[HN Gopher] Magic Leap One Bootloader Exploit
       ___________________________________________________________________
        
       Magic Leap One Bootloader Exploit
        
       Author : mmastrac
       Score  : 61 points
       Date   : 2025-05-15 02:09 UTC (3 days ago)
        
 (HTM) web link (github.com)
 (TXT) w3m dump (github.com)
        
       | bigyabai wrote:
       | The 80% chance that someone develops a bootloader exploit is my
       | favorite part of owning COTS Nvidia hardware. Doubly-so on
       | locked-down platforms like the Nintendo Switch that really do
       | benefit from having a homebrew store.
        
         | gjsman-1000 wrote:
         | It will be interesting to see if the Switch 2 ever gets a mod
         | chip, because NVIDIA has a completely reengineered boot chain
         | that _should_ be impenetrable. Combine that with an OS that
         | already is impenetrable (no useful exploits in half a decade),
         | we might be waiting an Xbox One-level amount of time.
         | 
         | https://gbatemp.net/threads/switch-2-data-gathering-for-poss...
        
           | bigyabai wrote:
           | > we might be waiting an Xbox One-level amount of time.
           | 
           | You never know! People said that about the Switch at launch,
           | and then someone softmodded it with a paperclip and USB-C.
        
       | Namidairo wrote:
       | I'm surprised that there are modern Tegra devices shipping with
       | identical SBK across their production line.
       | 
       | I would have thought they'd do some mixing based on serial number
       | or chip id as a baseline.
       | 
       | Or at least that's what the hash of their SBK implies.
       | 
       | I do enjoy seeing the boot chain on Tegra get broken yet again
       | though.
        
       ___________________________________________________________________
       (page generated 2025-05-18 23:01 UTC)